directx80a.exe

Microsoft Corporation

This is a setup program which is used to install the application. The file has been seen being downloaded from software.oldversion.com and multiple other hosts.
Publisher:
Microsoft Corporation  (signed and verified)

MD5:
b4ac54090ab04758e1972fbd7e99684e

SHA-1:
63d0723ae28b9eadcc1f90f73835a22cbc88d67f

SHA-256:
7cef0b986168e5749224803222308e5847e9cc301f66d3544bcc941f8aec2e11

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)
Whitelisted  (by digital signature)

Analysis date:
12/25/2024 4:21:20 AM UTC  (today)

File size:
24.7 MB (25,938,840 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\downloads\directx80a.exe

Digital Signature
Authority:
VeriSign, Inc.

Valid from:
4/3/2000 5:00:00 PM

Valid to:
4/17/2001 4:59:59 PM

Subject:
OU=Microsoft Corporation, CN=Microsoft Corporation, L=Redmond, S=Washington, C=US, OU=Digital ID Class 3 - Microsoft Software Validation v2, OU="www.verisign.com/repository/RPA Incorp. by Ref.,LIAB.LTD(c)98", OU=VeriSign Commercial Software Publishers CA, O="VeriSign, Inc.", L=Internet

Issuer:
OU=VeriSign Commercial Software Publishers CA, O="VeriSign, Inc.", L=Internet

Serial number:
75F28EF8A8FBEA6D11529714954B655C

File PE Metadata
Compilation timestamp:
4/19/2000 10:39:41 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
5.10

CTPH (ssdeep):
786432:vwGBZ1qjXEiWBPYiNATj9zC8ow/oW7OSFbI:4GbAjXEltUfCWxF0

Entry address:
0x38F8

Entry point:
53, FF, 15, 60, 70, 40, 00, B3, 22, 38, 18, 74, 03, 80, C3, FE, 8A, 48, 01, 40, 33, D2, 3A, CA, 74, 0A, 3A, CB, 74, 06, 8A, 48, 01, 40, EB, F2, 38, 10, 74, 01, 40, 52, 50, 52, 52, FF, 15, 64, 70, 40, 00, 50, E8, 38, F8, FF, FF, 50, FF, 15, 68, 70, 40, 00, 5B, C3, 8B, 44, 24, 04, 8B, 40, 3C, 05, F8, 00, 00, 00, C3, 55, 8B, EC, 51, A1, 08, B6, 40, 00, 83, 0D, A0, B4, 40, 00, FF, 56, 33, F6, 39, 35, D4, AF, 40, 00, 89, 35, CC, B5, 40, 00, 89, 35, 04, B6, 40, 00, A3, 84, B7, 40, 00, 75, 05, E8, 47, D9, FF, FF...
 
[+]

Entropy:
7.9989

Packer / compiler:
WinZip, 0x32-bit SFX v8.x module

Code size:
20.5 KB (20,992 bytes)

The file directx80a.exe has been seen being distributed by the following 29 URLs.

http://software.oldversion.com/download.php?f=YTo1OntzOjQ6InRpbWUiO2k6MTQ4NTEyMjI5OTtzOjI6ImlkIjtpOjEwNDk7czo0OiJmaWxlIjtzOjE0OiJkaXJlY3R4ODBhLmV4ZSI7czozOiJ1cmwiO3M6NDY6Imh0dHA6Ly93d3cub2xkdmVyc2lvbi5jb20vd2luZG93cy9kaXJlY3R4LTgtMGEiO3M6NDoicGFzcyI7czozMjoiOTdiYWQ0NjVjY2NkY2JlMjg5NWMwNDhhZGU0MWMwMDMiO30=

http://software.oldversion.com/download.php?f=YTo1OntzOjQ6InRpbWUiO2k6MTQ3NjIxNjI3MTtzOjI6ImlkIjtpOjEwNDk7czo0OiJmaWxlIjtzOjE0OiJkaXJlY3R4ODBhLmV4ZSI7czozOiJ1cmwiO3M6NDY6Imh0dHA6Ly93d3cub2xkdmVyc2lvbi5jb20vd2luZG93cy9kaXJlY3R4LTgtMGEiO3M6NDoicGFzcyI7czozMjoiYjM5YzgzYjMxZmEwOGIyYmI5NTVmZDVmNGUzMTFkNjEiO30=

http://software.oldversion.com/download.php?f=YTo1OntzOjQ6InRpbWUiO2k6MTQ4MjU4MjA1NTtzOjI6ImlkIjtpOjEwNDk7czo0OiJmaWxlIjtzOjE0OiJkaXJlY3R4ODBhLmV4ZSI7czozOiJ1cmwiO3M6NDU6Imh0dHA6Ly9hci5vbGR2ZXJzaW9uLmNvbS93aW5kb3dzL2RpcmVjdHgtOC0wYSI7czo0OiJwYXNzIjtzOjMyOiJiNzY1ZTRlZjExZmQ3YTgxYzdkZTllZDg4YWIzMzI3ZiI7fQ==

http://software.oldversion.com/download.php?f=YTo1OntzOjQ6InRpbWUiO2k6MTQ4MTQxNDk4NDtzOjI6ImlkIjtpOjEwNDk7czo0OiJmaWxlIjtzOjE0OiJkaXJlY3R4ODBhLmV4ZSI7czozOiJ1cmwiO3M6NDY6Imh0dHA6Ly93d3cub2xkdmVyc2lvbi5jb20vd2luZG93cy9kaXJlY3R4LTgtMGEiO3M6NDoicGFzcyI7czozMjoiNTlhZDRiYzc4OTI3ZjNlMTM0YTNhNzE3ZGU1ZWM5NTgiO30=

http://software.oldversion.com/download.php?f=YTo1OntzOjQ6InRpbWUiO2k6MTQ3MjczMDUzNjtzOjI6ImlkIjtpOjEwNDk7czo0OiJmaWxlIjtzOjE0OiJkaXJlY3R4ODBhLmV4ZSI7czozOiJ1cmwiO3M6NDk6Imh0dHA6Ly93d3cub2xkdmVyc2lvbi5jb20uZGUvd2luZG93cy9kaXJlY3R4LTgtMGEiO3M6NDoicGFzcyI7czozMjoiYmJiYTQzNjUzMzVmMzA0N2NjYTEyZDgyM2QwODJiNzkiO30=

http://software.oldversion.com/download.php?f=YTo1OntzOjQ6InRpbWUiO2k6MTQ3NjY1Nzk2ODtzOjI6ImlkIjtpOjEwNDk7czo0OiJmaWxlIjtzOjE0OiJkaXJlY3R4ODBhLmV4ZSI7czozOiJ1cmwiO3M6NDY6Imh0dHA6Ly93d3cub2xkdmVyc2lvbi5jb20vd2luZG93cy9kaXJlY3R4LTgtMGEiO3M6NDoicGFzcyI7czozMjoiZmNmOWIyY2M2NGE3MTEyMGRiOWMyYmU3MGNmMjVlMDEiO30=

http://software.oldversion.com/download.php?f=YTo1OntzOjQ6InRpbWUiO2k6MTQ2NjgwNjEyNztzOjI6ImlkIjtpOjEwNDk7czo0OiJmaWxlIjtzOjE0OiJkaXJlY3R4ODBhLmV4ZSI7czozOiJ1cmwiO3M6NDY6Imh0dHA6Ly93d3cub2xkdmVyc2lvbi5jb20vd2luZG93cy9kaXJlY3R4LTgtMGEiO3M6NDoicGFzcyI7czozMjoiYjAxYjM3OTg3YWNmYzYwNTIwMDRiMDRiNjE1YzNkYzgiO30=

http://software.oldversion.com/download.php?f=YTo1OntzOjQ6InRpbWUiO2k6MTQ4MzAyMTYzMTtzOjI6ImlkIjtpOjEwNDk7czo0OiJmaWxlIjtzOjE0OiJkaXJlY3R4ODBhLmV4ZSI7czozOiJ1cmwiO3M6NDY6Imh0dHA6Ly93d3cub2xkdmVyc2lvbi5jb20vd2luZG93cy9kaXJlY3R4LTgtMGEiO3M6NDoicGFzcyI7czozMjoiNDRkYzNlMzVjOGUyNjQ0NWI1ZDMzOWE1NzIyZTM1NGMiO30=

http://www.funcyclecapital.com/NnCnE2g7E2ZlGq43 ArKEjhnQDbqTMAK1MwyjvgU1M3urwNc6a6UGnScPDWjtsnTrhVW8OJU _FMezg2ovbWlJrRZdKWeSDQDWqvaHr4rVXfuSildLoP6V968fBAuLpQEbHmo_Y9l7c17_W8TPbSIIt_QcEtqeVaIMlHx6VPMNPkTbvRcYwX0ZyK1ii03cZGpzzsRGZJfIlpqQBh2J6jOkhxTnqIMw==-GzEAAERPFtuJUlS_ebOxKWADDpxqkI0eNsbOFXQ0Y40FHaaLu eU__Wm5Z0PJ_QC

http://software.oldversion.com/download.php?f=YTo1OntzOjQ6InRpbWUiO2k6MTQ3Nzc3MzU0OTtzOjI6ImlkIjtpOjEwNDk7czo0OiJmaWxlIjtzOjE0OiJkaXJlY3R4ODBhLmV4ZSI7czozOiJ1cmwiO3M6NDY6Imh0dHA6Ly93d3cub2xkdmVyc2lvbi5jb20vd2luZG93cy9kaXJlY3R4LTgtMGEiO3M6NDoicGFzcyI7czozMjoiN2U1MDI5ZGY4ZmM3NTI5N2E4ZmExMDgxZjBmZTBmOGIiO30=

http://software.oldversion.com/download.php?f=YTo1OntzOjQ6InRpbWUiO2k6MTQ4MDc5MzY4NTtzOjI6ImlkIjtpOjEwNDk7czo0OiJmaWxlIjtzOjE0OiJkaXJlY3R4ODBhLmV4ZSI7czozOiJ1cmwiO3M6NDY6Imh0dHA6Ly93d3cub2xkdmVyc2lvbi5jb20vd2luZG93cy9kaXJlY3R4LTgtMGEiO3M6NDoicGFzcyI7czozMjoiNTIyNjA3ZGYyNzFmMGMzOTg5ZjRiMjhmMDBkMjBkZmYiO30=

http://software.oldversion.com/download.php?f=YTo1OntzOjQ6InRpbWUiO2k6MTQ3NjQ3Nzk5NztzOjI6ImlkIjtpOjEwNDk7czo0OiJmaWxlIjtzOjE0OiJkaXJlY3R4ODBhLmV4ZSI7czozOiJ1cmwiO3M6NDY6Imh0dHA6Ly93d3cub2xkdmVyc2lvbi5jb20vd2luZG93cy9kaXJlY3R4LTgtMGEiO3M6NDoicGFzcyI7czozMjoiMTQzOTRkY2Q3OGI5OGZiN2E5YTY5ZDY2N2NkYjMyMDYiO30=

http://software.oldversion.com/download.php?f=YTo1OntzOjQ6InRpbWUiO2k6MTQ3NjcwNDQ1MztzOjI6ImlkIjtpOjEwNDk7czo0OiJmaWxlIjtzOjE0OiJkaXJlY3R4ODBhLmV4ZSI7czozOiJ1cmwiO3M6NDY6Imh0dHA6Ly93d3cub2xkdmVyc2lvbi5jb20vd2luZG93cy9kaXJlY3R4LTgtMGEiO3M6NDoicGFzcyI7czozMjoiZjk2MGE5MWMzMzU1ODgwYzEyMGI3ZmNhODk3ZmEzM2QiO30=

http://software.oldversion.com/download.php?f=YTo1OntzOjQ6InRpbWUiO2k6MTQ3NzgzNDU3MDtzOjI6ImlkIjtpOjEwNDk7czo0OiJmaWxlIjtzOjE0OiJkaXJlY3R4ODBhLmV4ZSI7czozOiJ1cmwiO3M6NDY6Imh0dHA6Ly93d3cub2xkdmVyc2lvbi5jb20vd2luZG93cy9kaXJlY3R4LTgtMGEiO3M6NDoicGFzcyI7czozMjoiOGQ0ODk4ZDI1MGI2NTQ5MTUwNTk5MjI3MTgwOWRlNTUiO30=

http://software.oldversion.com/download.php?f=YTo1OntzOjQ6InRpbWUiO2k6MTQ3OTQ0ODUxNDtzOjI6ImlkIjtpOjEwNDk7czo0OiJmaWxlIjtzOjE0OiJkaXJlY3R4ODBhLmV4ZSI7czozOiJ1cmwiO3M6NDY6Imh0dHA6Ly93d3cub2xkdmVyc2lvbi5jb20vd2luZG93cy9kaXJlY3R4LTgtMGEiO3M6NDoicGFzcyI7czozMjoiN2I4MzQxNzgyM2ZmYTI2Mzk3ZTIxY2ZiYmE5ODdkMDUiO30=

http://www.funcyclecapital.com/PYp2FuBYJzIx9z0MNy23gAUSYkFlNCmdKS20h7MOR09bnpbN7Xgjaey1ahTZdkqphbrmRC2cDVNGjf8Lcr0S1oCGwTGX1MTGq7pv0ZCLpBmaXP_CpypZ6f3YSJuT69R1v2U1N5IbL4ueX728Hk2ZKcgxUov2SSErIPwZVjsnOZhSlJb _iRBa100R0wnXTmgRF1F9Jngs8qVIG05cZGNODgyYejlLg==-GzEAAERPFtuJUlS_ebOxKWADDpxqkI0eNsbOFXQ0Y40FHaaLu eU__Wm5Z0PJ_QC

http://software.oldversion.com/download.php?f=YTo1OntzOjQ6InRpbWUiO2k6MTQ1NDk0NTc3NDtzOjI6ImlkIjtpOjEwNDk7czo0OiJmaWxlIjtzOjE0OiJkaXJlY3R4ODBhLmV4ZSI7czozOiJ1cmwiO3M6NDY6Imh0dHA6Ly93d3cub2xkdmVyc2lvbi5jb20vd2luZG93cy9kaXJlY3R4LTgtMGEiO3M6NDoicGFzcyI7czozMjoiYTk0MTZjMDBjZjQ2NjBjNzljNDQ2YTdiYTMwZDI1N2YiO30=

http://software.oldversion.com/download.php?f=YTo1OntzOjQ6InRpbWUiO2k6MTQ3MDE3MzgzNDtzOjI6ImlkIjtpOjEwNDk7czo0OiJmaWxlIjtzOjE0OiJkaXJlY3R4ODBhLmV4ZSI7czozOiJ1cmwiO3M6NDY6Imh0dHA6Ly93d3cub2xkdmVyc2lvbi5jb20vd2luZG93cy9kaXJlY3R4LTgtMGEiO3M6NDoicGFzcyI7czozMjoiMGE5MWNjODdiNzBjNmRjOTE2MDg0MzE1NGRjMTY1ZDUiO30=

http://software.oldversion.com/download.php?f=YTo1OntzOjQ6InRpbWUiO2k6MTQ3MTUyNjAwNDtzOjI6ImlkIjtpOjEwNDk7czo0OiJmaWxlIjtzOjE0OiJkaXJlY3R4ODBhLmV4ZSI7czozOiJ1cmwiO3M6NDY6Imh0dHA6Ly93d3cub2xkdmVyc2lvbi5jb20vd2luZG93cy9kaXJlY3R4LTgtMGEiO3M6NDoicGFzcyI7czozMjoiZjVhNzRjMmEwOWE5MjIyNTdjMTMwZjA5YjlmMTg5Y2YiO30=